Security Innovation Shines Spotlight on Connected Car and Mobile Security at Black Hat Europe 2015
Security Innovation Shining a Spotlight on Mobile and Automotive Threats at Black Hat Europe 2015
November 9, 2015 - Security Innovation, a cybersecurity provider and leader in the 2015 Gartner Magic Quadrant for Security Awareness Training for Security Awareness Training, will be showcasing their expertise at Black Hat Europe 2015. The company was selected to speak on automated and connected cars as well as mobile security.
Security Innovation’s Principal Scientist, Jonathan Petit will be leading a seminar entitled Self-Driving and Connected Cars: Fooling Sensors and Tracking Drivers. This session will focus on the security of autonomous vehicles and the privacy of connected vehicles, and will feature Petit’s own research and recent public hack on an autonomous vehicle. In an experiment conducted at the University of Twente in The Netherlands, Petit was able to fool a self-driving car into thinking there were other cars and pedestrians around it, stopping the vehicle in its tracks. This was achieved with $60 worth of equipment bought over the counter.
"Security should be present at all layers and that’s why this talk will span from hardware security to privacy of V2X communication," said Petit."Despite my active participation in automotive consortium and standardization, I felt it was important for automakers and consumers alike to be made aware of the security and privacy risks of these poorly implemented systems."
Prior to joining Security Innovation, Petit was a Research Fellow in the Computer Security Group and The Mobile & Internet Systems Laboratory at University College Cork, Ireland. He coordinated the European funded FP7 PRESERVE project and holds a PhD and M.Sc. degree from Paul Sabatier University, Toulouse, France.
In addition to Petit’s seminar, Security Innovation Senior Security Engineer Dinesh Shetty will be presenting at Arsenal, Black Hat’s interactive demo area. Shetty will be introducing InsecureBank, his custom-built, intentionally vulnerable Android application. Shetty will also be discussing source code review tools, defensive coding techniques and will invite attendees to hack his application. Of his InsecureBank app, Shetty said:
"This is a major update to my previous version of InsecureBank, now including a completely updated user interface, an improved exception handling mechanism, and we’ve added a root detection mechanism.This application was created for security enthusiasts and developers to learn the Android insecurities by testing this vulnerable application."
In addition to his work at Security Innovation, Shetty is an accomplished author and speaker, whose research has been published in many industry outlets including: Packet Storm, Exploit-DB, PenTest Magazine, SecurityXploded, ClubHACK Magazine, and Exploit-Id. He is also a Hall of Fame member of Apple, Adobe and Barracuda Networks for his identification and responsible disclosure of critical security vulnerabilities in their products and Web applications.
About Security Innovation
Since 2002, Security Innovation has been the trusted partner for cybersecurity risk analysis and mitigation for the world’s leading companies, including Microsoft, Sony, GM, Disney, Google and Dell. Recognized as a Leader in the Gartner Magic Quadrant for Security Awareness Computer-Based Training for the second year in a row, Security Innovation is dedicated to securing and protecting sensitive data in the most challenging environments - automobiles, desktops, web applications, mobile devices and in the cloud. Security Innovation is privately held and headquartered in Wilmington, MA USA. For more information, visit www.onboardsecurity.com.